** Description changed: [Availability] The package glycin is already in Ubuntu universe. The package glycin build for the architectures it is designed to work on. It currently builds and works for architectures: amd64 arm64 armhf ppc64el riscv64 s390x Link to package https://launchpad.net/ubuntu/+source/glycin [Rationale] - The package glycin is required in Ubuntu main as a depends of the new GNOME image viewer `loupe` - The package glycin will generally be useful for a large part of our user base - Package glycin covers an use case similar to gdk-pixbuf but more adapted to the new GNOME rust applications. It doesn't intend to replace gdk-pixbuf at this point. - There is no other/better way to solve this that is already in main or should go universe->main instead of this. - The binary package glycin-loaders needs to be in main to allow the `loupe` viewer to load images. - The package glycin will be required in main probably next cycle as we are looking at making `loupe` our default image viewer. We want to start the review process now since we expect that it will need to go through a security review which is usually taking a while. [Security] - No CVEs/security issues in this software in the past - no `suid` or `sgid` binaries - no executables in `/sbin` and `/usr/sbin` - Package does not install services, timers or recurring jobs - Packages does not open privileged ports (ports < 1024). - Package does not expose any external endpoints - Packages does not contain extensions to security-sensitive software [Quality assurance - function/usage] - The package works well right after install [Quality assurance - maintenance] - The package is maintained well in Debian/Ubuntu/Upstream and only has minor issues and feature requests reported - Ubuntu https://bugs.launchpad.net/ubuntu/+source/glycin/+bug - Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=glycin - Upstream's bug tracker, https://gitlab.gnome.org/GNOME/glycin/-/issues - The package has important open bugs, listing them: TBD - The package does not deal with exotic hardware we cannot support [Quality assurance - testing] - - The package runs a test suite on build time, if it fails it makes the build fail, link to build log https://launchpadlibrarian.net/764227141/buildlog_ubuntu-plucky-amd64.glycin_1.1.2+ds-2_BUILDING.txt.gz + - The package runs a test suite on build time, if it fails it makes the build fail, link to build log + https://launchpad.net/ubuntu/+source/glycin/1.2.1+ds-2ubuntu1 1/5 install-integration-test OK 1.62s 2/5 setup-integration-test-glycin-heif OK 0.03s 3/5 setup-integration-test-glycin-image-rs OK 0.03s 4/5 setup-integration-test-glycin-jxl OK 0.03s 5/5 setup-integration-test-glycin-svg OK 0.03s Ok: 5 Expected Fail: 0 Fail: 0 Unexpected Pass: 0 Skipped: 0 Timeout: 0 - TOFIX: need to sort out the autopkgtest situation - TODO-A: - The package runs an autopkgtest, and is currently passing on - TODO-A: this TBD list of architectures, link to test logs TBD - TODO-B: - The package does not run an autopkgtest because TBD + - The package runs an autopkgtest, and is currently passing on amd64 + link to test logs + https://autopkgtest.ubuntu.com/packages/glycin [Quality assurance - packaging] - debian/watch is present and works - debian/control defines a correct Maintainer - the package only has that minor lintian warning P: glycin source: redundant-globbing-patterns (tests/test- images/images/color* tests/test-images/images/color-iccp-pro*) for tests/test-images/images/color-iccp-pro.png [debian/copyright:13] repeated for the different images in that directory - Lintian overrides are not present - This package does not rely on obsolete or about to be demoted packages. - This package has no python2 or GTK2 dependencies - The package will be installed by default, but does not ask debconf questions - Packaging and build is easy, link to debian/rules https://salsa.debian.org/gnome- team/glycin/-/blob/debian/latest/debian/rules [UI standards] - Application is not end-user facing (does not need translation) [Dependencies] - No further depends or recommends dependencies that are not yet in main [Standards compliance] - This package correctly follows FHS and Debian Policy [Maintenance/Owner] - The owning team will be ~desktop-packages and I have their acknowledgement for that commitment - The future owning team is already subscribed to the package - This does not use static builds + dependencies - TOFIX - the package needs to be updated to vendor its rust dependencies + - The team TBD is aware of the implications of vendored code and (as + alerted by the security team) commits to provide updates and backports + to the security team for any affected vendored code for the lifetime of + the release (including ESM). - TODO-B: - The team TBD is aware of the implications of vendored code and (as - TODO-B: alerted by the security team) commits to provide updates and backports - TODO-B: to the security team for any affected vendored code for the lifetime - TODO-B: of the release (including ESM). - - TODO-A: - This does not use vendored code - TODO-B: - This package uses vendored go code tracked in go.sum as shipped in the - TODO-B: package, refreshing that code is outlined in debian/README.source - TODO-C: - This package uses vendored rust code tracked in Cargo.lock as shipped, - TODO-C: in the package (at /usr/share/doc/<pkgname>/Cargo.lock - might be - TODO-C: compressed), refreshing that code is outlined in debian/README.source + - This package uses vendored rust code tracked in Cargo.lock as shipped, in the package (at /usr/share/doc/<pkgname>/Cargo.lock - might be compressed), refreshing that code is outlined in debian/README.source TODO-D: - This package uses vendored code, refreshing that code is outlined TODO-D: in debian/README.source - TODO-B: - This package is rust based and vendors all non language-runtime - TODO-B: dependencies + - This package is rust based and vendors all non language-runtime + dependencies - The package has been built within the last 3 months in the archive - - Build link on launchpad: https://launchpadlibrarian.net/764227141/buildlog_ubuntu-plucky-amd64.glycin_1.1.2+ds-2_BUILDING.txt.gz + - Build link on launchpad: https://launchpad.net/ubuntu/+source/glycin/1.2.1+ds-2ubuntu1 [Background information] The Package description explains the package well Upstream Name is glycin Link to upstream project https://gitlab.gnome.org/GNOME/glycin/-/issues
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2093182 Title: [MIR] glycin To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/glycin/+bug/2093182/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
